gnutls CVE-2014-3466

creej · June 4, 2014, 6:14pm

Will there be a patched version of gnutls through online update for CVE-2014-3466 or should I patch manually?

Thanks,

Jeff

smflood · June 4, 2014, 7:39pm

On 04/06/2014 16:24, creej wrote:
[color=blue]

Will there be a patched version of gnutls through online update for
CVE-2014-3466 or should I patch manually?[/color]

Since you have asked in a forum related to SUSE Linux Enterprise Server
(SLES) which version(s) of SLES are you using?

HTH.

Simon
SUSE Knowledge Partner

If you find this post helpful and are logged into the web interface,
please show your appreciation and click on the star below. Thanks.

creej · June 4, 2014, 8:02pm

[QUOTE=smflood;21793]On 04/06/2014 16:24, creej wrote:
[color=blue]

Will there be a patched version of gnutls through online update for
CVE-2014-3466 or should I patch manually?[/color]

Since you have asked in a forum related to SUSE Linux Enterprise Server
(SLES) which version(s) of SLES are you using?

HTH.

Simon
SUSE Knowledge Partner

If you find this post helpful and are logged into the web interface,
please show your appreciation and click on the star below. Thanks.
------------------------------------------------------------------------[/QUOTE]

Which versions you got?

Pretty much everything from SLES 9 SP3 to SLES 11 SP3.

Jeff

mikewillis · June 4, 2014, 9:38pm

Patches for some products are certainly imminent:
http://support.novell.com/security/cve/CVE-2014-3466.html
I don’t know which versions of SLES contain versions of gnutls that are affected.

smflood · June 5, 2014, 1:19pm

On 04/06/2014 18:04, creej wrote:
[color=blue]

Which versions you got?

Pretty much everything from SLES 9 SP3 to SLES 11 SP3.[/color]

Patched versions for SLES11 SP3 would appear to now be available via the
Updates repo and possibly for download via Patch Finder (but that
currently seems to be broken which I’ve reported).

For earlier versions of SLES you’ll either need to upgrade to SLES11 SP3
or compile your own patched versions since versions of SLES earlier than
SLES11 SP3 are no longer supported unless you’ve signed up to Long Term
Service Pack Support.

HTH.

Simon
SUSE Knowledge Partner

If you find this post helpful and are logged into the web interface,
please show your appreciation and click on the star below. Thanks.

creej · June 5, 2014, 10:05pm

Thanks guys!

Topic		Replies	Views
CVE-2014-4877 update SLES Updates	3	163	November 7, 2014
SLES 12 and dirty cow SLES Updates	3	201	October 26, 2016
bash patch for SLES 9 SLES Updates	6	286	September 26, 2014
OpenSSL security updates for SLES 11.3 SLES Configure-Administer	4	191	June 3, 2016
SLES10SP3 won't update to SP4 "no patches available" SLES Updates	2	186	January 28, 2013

gnutls CVE-2014-3466

HTH.

If you find this post helpful and are logged into the web interface, please show your appreciation and click on the star below. Thanks.

HTH.

HTH.

If you find this post helpful and are logged into the web interface, please show your appreciation and click on the star below. Thanks.

Related Topics

If you find this post helpful and are logged into the web interface,
please show your appreciation and click on the star below. Thanks.

If you find this post helpful and are logged into the web interface,
please show your appreciation and click on the star below. Thanks.